<?php

/**
 * EXHIBIT A. Common Public Attribution License Version 1.0
 * The contents of this file are subject to the Common Public Attribution License Version 1.0 (the “License”);
 * you may not use this file except in compliance with the License. You may obtain a copy of the License at
 * http://www.oxwall.org/license. The License is based on the Mozilla Public License Version 1.1
 * but Sections 14 and 15 have been added to cover use of software over a computer network and provide for
 * limited attribution for the Original Developer. In addition, Exhibit A has been modified to be consistent
 * with Exhibit B. Software distributed under the License is distributed on an “AS IS” basis,
 * WITHOUT WARRANTY OF ANY KIND, either express or implied. See the License for the specific language
 * governing rights and limitations under the License. The Original Code is Oxwall software.
 * The Initial Developer of the Original Code is Oxwall Foundation (http://www.oxwall.org/foundation).
 * All portions of the code written by Oxwall Foundation are Copyright (c) 2011. All Rights Reserved.

 * EXHIBIT B. Attribution Information
 * Attribution Copyright Notice: Copyright 2011 Oxwall Foundation. All rights reserved.
 * Attribution Phrase (not exceeding 10 words): Powered by Oxwall community software
 * Attribution URL: http://www.oxwall.org/
 * Graphic Image as provided in the Covered Code.
 * Display of Attribution Information is required in Larger Works which are defined in the CPAL as a work
 * which combines Covered Code or portions thereof with code not governed by the terms of the CPAL.
 */

/**
 * API Server
 *
 * @author Sergey Kambalin <greyexpert@gmail.com>
 * @package ow_system_plugins.base.controllers
 * @since 1.0
 */
class BASE_CTRL_ApiServer extends OW_ActionController
{
    public function request()
    {
        $trustedIp = $_SERVER["SERVER_ADDR"]; 
        
        if ( defined('OW_API_TRUSTED_IP')  )
        {
            $trustedIp = OW_API_TRUSTED_IP;
        }
        
        if ( $trustedIp != $_SERVER["REMOTE_ADDR"] )
        {
            $this->error('Request from untrusted IP address', 0);
        }
        
        if ( empty($_GET['controller']) || empty($_GET['action']) )
        {
            $this->error('Incorrect request: controller or action is empty', 1);
        }
        
        $controllerClass = trim($_GET['controller']);
        $action = trim($_GET['action']);
        
        if ( !class_exists( $controllerClass, true ) )
        {
            $this->error('Controller class is not exists', 2);
        }
        
        $controller = new $controllerClass();
        
        // check if controller exists and is instance of base action controller class
        if( $controller === null || !$controller instanceof OW_ActionController )
        {
            $this->error("Can't dispatch request! Please provide valid controller class!", 3);
        }
        /* @var $controller OW_ActionController */
        $controller->init();
        
        $data = empty($_GET['data']) ? null : @json_decode(urldecode($_GET['data']), true);
        $data = empty($data) ? array() : $data;
        
        try 
        {        
            $responce = $controller->$action($data);
        }
        catch ( Exception $e )
        {
            $this->error($e->getMessage(), 4, 'actionException');
        }
        
        $this->success($responce);
    }
    
    private function error($message, $code, $errorType = 'requestError')
    {
        echo json_encode(array(
                'responseType' => 'error',
                'error' => $code,
                'errorMessage' => $message,
                'errorType' => $errorType
            ));
        
        exit;
    }
    
    public function success( $data )
    {
        echo json_encode(array(
                'responseType' => 'success',
                'data' => $data
            ));
        
        exit;
    }
}